Windows 10 is getting launched within next two weeks. Did you know that SMEs can get rid of their on-premise AD if they are just using it for authentication and compliance (Well Azure AD cannot replace group policies still)? Today I’m going to explore the Azure AD join feature that we have with Windows 10. I’m using a Windows 10 Insider Preview 10622 build for this.
- Azure AD Tenant – If you are using Office 365 or has an Azure subscription you already have an Azure AD tenant or can create one.
- Windows 10 Insider Preview installed PC – The latest release would do.
- Check wither your Azure AD tenant is allowed to enroll devices. You can check this from Azure Portal as below. Note that this feature is still in preview.
Now let’s take a look at how we can achieve this.
- In your Windows 10 device, go to Settings section. There you see and option Join or Leave Azure AD. Remember to check the device is activated or not first.
- It will redirect to System properties window. You can see my device is in workgroup. Now I’m going to select Join Azure AD.
- Click Continue in the authorization page.
- I’m going to use my Office 365 Azure AD tenant for this task. Notice that if you have AAD premium enabled you can see your custom logo as well.
- Click Join when it prompts for verification.
- Now it will take about 10 minutes for the device enrollment to complete.
- If all is set you can click Finish.
- When I check the System properties I can see that my device is joined to my Office 365 Azure AD tenant.Now that you have successfully joined the PC to Azure AD in the next post let’s see how we can enforce your existing security policies to this device.